
$ rpki-client -vvf repo-rpki.idnic.net/repo/c1f7c25b-410b-482a-9436-221ab079d368/0/3130332e35322e3231322e302f32342d3234203d3e20313531353932.roa
File: 3130332e35322e3231322e302f32342d3234203d3e20313531353932.roa (raw, json)
Hash identifier: 9JDBXYlD9SqW2BMyADf7uhmLucs+uFWH56a3wjHsOJc=
Subject key identifier: 3D:3B:15:D6:70:CC:D9:0B:92:A2:86:28:5D:9A:D2:40:79:7C:4A:C5
Certificate issuer: /CN=121FC37C40B5B0AFD8F88B57216FD43E29D11E1C
Certificate serial: 359BE5BBE7A92FD0FDA904400BA623F1B4758EB2
Authority key identifier: 12:1F:C3:7C:40:B5:B0:AF:D8:F8:8B:57:21:6F:D4:3E:29:D1:1E:1C
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/121FC37C40B5B0AFD8F88B57216FD43E29D11E1C.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/c1f7c25b-410b-482a-9436-221ab079d368/0/3130332e35322e3231322e302f32342d3234203d3e20313531353932.roa
Signing time: Thu 09 Oct 2025 12:02:28 +0000
ROA not before: Thu 09 Oct 2025 11:57:28 +0000
ROA not after: Thu 08 Oct 2026 12:02:28 +0000
asID: 151592
IP address blocks: 103.52.212.0/24 maxlen: 24
Validation: OK
Signature path: rsync://repo-rpki.idnic.net/repo/c1f7c25b-410b-482a-9436-221ab079d368/0/121FC37C40B5B0AFD8F88B57216FD43E29D11E1C.crl
rsync://repo-rpki.idnic.net/repo/c1f7c25b-410b-482a-9436-221ab079d368/0/121FC37C40B5B0AFD8F88B57216FD43E29D11E1C.mft
rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/121FC37C40B5B0AFD8F88B57216FD43E29D11E1C.cer
rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 22 Oct 2025 00:19:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
35:9b:e5:bb:e7:a9:2f:d0:fd:a9:04:40:0b:a6:23:f1:b4:75:8e:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=121FC37C40B5B0AFD8F88B57216FD43E29D11E1C
Validity
Not Before: Oct 9 11:57:28 2025 GMT
Not After : Oct 8 12:02:28 2026 GMT
Subject: CN=3D3B15D670CCD90B92A286285D9AD240797C4AC5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:05:51:3b:91:b0:f0:3c:af:ca:ac:f9:cc:c1:
fc:e9:f2:5c:71:3e:d9:27:4b:be:6c:4b:c1:10:17:
a1:a2:bc:59:09:32:e9:23:7f:d0:5c:df:45:ca:23:
f0:8e:22:60:1e:75:10:81:8f:fb:fd:0b:31:6b:cd:
8b:54:fb:ba:58:0f:94:fa:4f:5b:71:99:fe:df:9d:
70:fe:c5:a9:4b:24:5d:d2:35:92:3e:f7:8b:3a:8d:
58:26:d7:63:37:e1:27:8b:eb:c4:db:3b:66:08:b5:
d4:26:a6:03:fb:e3:e3:9a:7a:59:3b:a6:14:c0:3f:
55:92:1c:40:ed:cc:c0:61:5a:60:8a:e2:e5:04:74:
6b:29:53:25:21:5d:b6:98:27:e4:55:0b:b7:9a:0a:
78:6a:c2:9a:6f:48:4d:da:4d:e7:3d:33:91:dd:3d:
2a:d2:04:ff:3f:c5:86:7c:72:95:a5:aa:9f:6a:78:
3d:a6:2b:1d:de:fa:c4:03:2d:24:10:6b:1a:52:21:
58:4b:5d:dd:97:e8:e0:1d:f5:da:d4:e4:ea:e4:de:
03:98:6f:fd:4a:5b:b0:4f:53:f8:d1:5a:f7:09:18:
94:f4:70:23:f0:93:8c:4b:a6:27:8a:63:04:fc:be:
58:f6:11:2b:b8:9a:36:27:19:f3:99:01:73:4d:4e:
17:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:3B:15:D6:70:CC:D9:0B:92:A2:86:28:5D:9A:D2:40:79:7C:4A:C5
X509v3 Authority Key Identifier:
keyid:12:1F:C3:7C:40:B5:B0:AF:D8:F8:8B:57:21:6F:D4:3E:29:D1:1E:1C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/c1f7c25b-410b-482a-9436-221ab079d368/0/121FC37C40B5B0AFD8F88B57216FD43E29D11E1C.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/121FC37C40B5B0AFD8F88B57216FD43E29D11E1C.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c1f7c25b-410b-482a-9436-221ab079d368/0/3130332e35322e3231322e302f32342d3234203d3e20313531353932.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.52.212.0/24
Signature Algorithm: sha256WithRSAEncryption
55:0f:34:1c:4a:af:eb:b4:cd:e5:1a:6b:60:13:d9:16:d6:9e:
f7:40:80:e1:1f:5b:2e:ea:64:76:83:ff:02:ac:00:a2:6e:de:
ae:f6:e8:96:33:b1:3d:9d:1b:b2:50:0f:a0:fa:b5:b7:19:c3:
07:76:73:8b:74:88:0c:94:f2:62:99:e3:6f:70:55:54:9e:c4:
21:47:4d:d7:20:b2:e8:19:31:19:84:45:9a:3a:e8:ca:16:2c:
c4:c8:87:2c:bf:75:19:21:f0:ce:d2:25:4b:c3:31:75:02:c0:
b1:9d:93:78:2d:1c:0d:51:06:3a:9b:9b:14:d1:30:10:69:be:
fd:2a:fc:c7:cf:06:5d:ea:6e:2d:15:7a:62:f8:dc:3b:31:35:
83:f6:27:e7:c4:c7:1b:11:24:7a:98:03:41:1c:84:43:24:6e:
ac:cb:28:84:c7:98:1b:a2:a9:1f:9d:c6:51:ad:df:92:68:9c:
b6:39:60:d2:38:8e:de:cb:13:45:cf:93:a0:f5:4e:19:00:06:
51:80:4b:68:a8:ee:0f:de:86:51:59:d9:2d:17:cc:55:26:80:
8a:1b:98:56:eb:64:2a:3a:50:fd:f0:3a:56:47:90:0d:16:1a:
80:87:18:96:bc:60:b2:e8:de:f2:37:45:89:af:4f:41:fd:17:
78:44:82:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 19:01:55 2025 by rpki-client